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We Claim: 

1 . . A method for addressing a mobile node, comprising the steps of: 

identifying a host to a corresponding node, with which the mobile node 
communicates, at a level above a network level using an invariant virtual internet protocol 
(BP) address of the host; 

identifying the host to a network address translation (NAT) device at a network 
interface level using a routable actual IP address of the host; and 

changing the actual IP address of the host used by the NAT device, and a rule for 
mapping the actual IP address to the virtual IP address, without varying the virtual IP address 
of the host used by the corresponding node, as the mobile node moves intra-domain or inter- 
domain. 

2. The method of claim 1, wherein the virtual IP address is used for maintaining a 
transport level protocol connection while the mobile node moves between a first subnet and a 
second subnet. 

3. The method of claim 1 , further comprising: 

receiving a packet from an application in the mobile node, the packet including the 
virtual IP address of the mobile node as a source address; 

translating the virtual IP address of the mobile node to the actual IP address of the 
mobile node for use as the source address; and 

transmitting the packet with the actual IP address from the mobile node. 

4. The method of claim 3, wherein the actual IP address is a local private address, the 
method further comprising: 

translating the actual IP address of the mobile node to a public IP address; and 
transmitting the packet with the public IP address to the corresponding node, the 

mobile node and the corresponding node being in different domains connected to each other 

by a public network. 

5. The method of claim 4, further comprising: 

receiving an incoming packet from the corresponding node in the NAT device, the 
incoming packet having the public IP address as a destination; 
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a first translating step of translating the public IP address to the actual IP address of 
the mobile node, the first translating step being performed in the NAT device; 

a second translating step of translating the actual IP address of the mobile node to the 
virtual IP address of the mobile node, the second translating step being performed in the 
5 mobile node; and 

providing the incoming packet with the virtual IP address as a destination for delivery 
to the application in the mobile node. 

6. The method of claim 1, further comprising: 
transmitting a packet from an application in the mobile node to the corresponding 

node, the transmitted packet having the virtual IP address of the mobile node as the source 
address, the mobile node and the corresponding node belonging to different subnets within a 
common domain; and 

receiving an incoming packet from the corresponding node by way of the NAT 
device, wherein the NAT device translates a destination address of the incoming packet from 
the virtual IP address of the mobile node to the actual IP address of the mobile node. 

7. The method of claim 6, wherein the corresponding node is a second mobile node, and 
the transmitted packet has a destination address that is a virtual IP address of the 
corresponding node, and the packet is transmitted to the corresponding node by way of the 
NAT device, the method further comprising: 

20 translating the virtual IP address of the corresponding node within the packet to an 

actual IP address of the corresponding node in the NAT device. 

8. The method of claim 7, wherein the transmitted packet is transmitted to the 
corresponding node by way of the NAT device, the method further comprising: 

translating the source address of the transmitted packet from the actual IP address of 
25 the mobile node to the virtual IP address of the mobile node, in the NAT device. 

9. The method of claim 1 , further comprising: 

using the NAT device within a first NAT domain as a home agent for the mobile node 
while the mobile node communicates with a first corresponding node in a first connection 
initiated while the mobile node is located in the first NAT domain; and 
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using a second NAT device within a second NAT domain as a home agent for the 
mobile node while the mobile node communicates with the first corresponding node or a 
second corresponding node in a second connection initiated while the mobile node is located 
in the second NAT domain. 

5 10. The method of claim 9, farther comprising using a packet processing rule for 

processing traffic from the mobile node, while the mobile node is in the second NAT domain, 
the packet processing rule being obtained from a device in the first NAT domain. 

1 1 . The method of claim 10, wherein when the mobile node moves from the first NAT 
domain to the second NAT domain, a mobility manager in the second NAT device requests 

10 and receives the packet processing rule from a mobility manager of the first NAT domain, 
wherein the first and second mobility managers have centralized views of users in the first 
and second NAT domains, respectively, and mappings between virtual IP addresses and 
actual IP addresses of the users currently in the first and second NAT domains, respectively. 

12. The method of claim 9, wherein the first and second connections partially overlap in 
1 5 time, so that the first and second NAT devices act as first and second home agents for the 

mobile node concurrently. 

13. The method of claim 12, wherein the mobile node has the same virtual address for 
both the first and second connections. 

14. The method of claim 12, wherein an additional node in the second NAT domain has 
20 the same virtual address as the mobile node, the method further comprising: 

assigning a second virtual address to the mobile node for connections initiated after 
the mobile node moves to the second domain; and 

continuing to use the first virtual address for connections initiated by the mobile node 
using the first virtual address, the continuing use of the first virtual address being concurrent 
25 with use of the second virtual address for connections initiated after the second virtual 
address is assigned to the mobile node. 

15. The method of claim 1, further comprising: 
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assigning the virtual and actual IP addresses using Dynamic Host Configuration 
Protocol 

16. The method of claim 1, further comprising translating the virtual IP address to a 
public IP address in the NAT device. 

5 1 7. The method of claim 1 , further comprising dividing an available range of private IP 
addresses into a first range to be used for actual IP addresses and a second range to be used 
for virtual IP addresses. 

18. A mobile node, comprising: 
a processor; 

a network interface; and 

a storage device having computer program code therein for execution by the 
processor, the computer program code including: 

a network layer for transmitting and receiving packets; and 
an intermediate driver that transmits packets to the network layer and 
receives packets from the network layer using a virtual internet protocol (IP) 
address to identify the mobile node, the intermediate driver transmitting 
packets to the network interface and receiving packets from the network 
interface using a routable actual IP address to identify the mobile node, 
wherein the intermediate driver permits the actual IP address to change when 
the mobile node moves intra-domain or inter-domain without a corresponding 
change in the virtual IP address. 

19. The mobile node of claim 1 8, wherein the intermediate driver includes means for 
changing a source IP address of packets transmitted by the mobile node from the virtual 
address to the actual address. 

25 20. The mobile node of claim 1 8, wherein the intermediate driver includes means for 
encapsulating packets transmitted by the mobile node. 
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21. The mobile node of claim 18, wherein the intermediate driver includes means for 
changing a destination IP address of packets received by the mobile node from the actual 
address to the virtual address. 

22. The mobile node of claim 1 8, further comprising means for requesting and receiving 
5 from a dynamic host configuration protocol (DHCP) server the virtual DP address and the 

actual IP address upon startup of the mobile node. 

23. The mobile node of claim 22, further comprising means for transmitting the virtual IP 
address to the DHCP server when the mobile node moves to the second subnet, to allow a 
new actual IP address to be associated with the virtual IP address. 

10 24. The mobile node of claim 18, further comprising a mobile IP client that transmits and 
receives packets by way of the network layer, the intermediate driver and the network 
interface. 

25. A dynamic host configuration protocol (DHCP) server, comprising: 

means for receiving a DHCP request from a mobile node; 
15 means for assigning a routable actual IP address to the mobile node; 

means for assigning a virtual IP address to the mobile node, wherein the virtual IP 
address does not change when the mobile node moves intra-domain; and 

means for transmitting a message to the mobile node containing the actual IP address 
and the virtual IP address. 

20 26. The DHCP server of claim 25, wherein the mobile node sends the DHCP server a 
further request to renew a lease of the actual IP address, the DHCP server further including: 

means for determining whether the mobile node is currently located in the first 
subnet; and 

means for denying the further request if the mobile node is in the second subnet. 

25 27. The DHCP server of claim 26, wherein the mobile node sends the DHCP server a new 
request identifying the virtual IP address when the further request is denied, the DHCP server 
further including: 
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means, responsive to the new request, for assigning a new actual IP address to the 
mobile node; and 

means for notifying a mobility manager function to initiate a change to a mapping 
table in a network address translation device so that the new actual IP address corresponds to 
5 the virtual IP address in the mapping table. 

28. A system including a network address translation (NAT) device, the NAT device 
comprising: 

means for receiving a plurality of packets identifying a virtual IP address of a mobile 
node coupled to the NAT device as a destination; 

10 means for identifying an actual IP address of the mobile node based on the virtual IP 

address, the identifying means being capable of associating a first actual IP address with the 
mobile node while the mobile node is located in a first subnet, the identifying means being 
capable of associating a second actual IP address of the mobile node with the same virtual IP 
address when the NAT device is notified of mobility of the mobile node; and 

15 means for routing the packets to the mobile node using the first IP address when the 

mobile node is in the first subnet and the second IP address when the mobile node is in the 
second subnet. 

29. The system of claim 28, further comprising a dynamic host configuration protocol 
(DHCP) server that assigns the virtual IP address and the actual IP address to the mobile 

20 node. 

30. The system of claim 29 wherein: 

the identifying means include a plurality of packet processing rules, and 

the system further comprises a mobility manager responsive to the DHCP server for 

updating the packet processing rules when the DHCP server assigns one of the first and 
25 second actual IP addresses to the mobile node, to associate one of the first and second actual 

IP address with the virtual IP address, the mobility manager having a centralized view of 

users in a domain of the NAT device. 

3 1 . The system of claim 30, further comprising a mobile node including: 



a processor; 



30 



a network interface; and 
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a storage device having computer program code therein for execution by the 
processor, the computer program code including: 

a network layer for transmitting and receiving packets; and 
an intermediate driver that transmits packets to the network 
layer and receives packets from the network layer using the virtual IP 
address to identify the mobile node, the intermediate driver 
transmitting packets to the network interface and receiving packets 
from the network interface using the actual IP address to identify the 
mobile node, 

wherein the NAT device transmits packets to the network interface and 
receives packets from the network interface using the actual IP address. 

32. The system of claim 30, wherein the mobility manager and the DHCP server are 
contained within a housing of the NAT device. 

33. The system of claim 30, wherein the DHCP server includes means, responsive to a 
15 request for a new actual IP address, for assigning the second actual IP address to the mobile 

node and notifying the mobility manager means that the virtual IP address is to be associated 
with the second actual IP address. 

34 The system of claim 28, further comprising a mobility manager, responsive to a 
notification of a movement by the mobile node, for notifying the NAT device that the mobile 
20 node has a new actual EP address. 
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